What users are saying about
Top Rated
186 Ratings
Top Rated
175 Ratings
Top Rated
186 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.4 out of 100
Top Rated
175 Ratings
<a href='https://www.trustradius.com/static/about-trustradius-scoring' target='_blank' rel='nofollow noopener noreferrer'>trScore algorithm: Learn more.</a>
Score 8.9 out of 100

Highlights

Cisco ASA and FortiGate are products that provide security for network applications, including firewall, SSL, web filtering and VPN. Both Cisco ASA and FortiGate are well liked among medium to enterprise sized businesses, but large established businesses tend to choose ASA, especially if their server environment is already Cisco. FortiGate is more popular among medium-sized businesses, which are more likely to be price sensitive.

Features

Cisco ASA and FortiGate provide many of the same services, but there are standout features of each.

Cisco ASA is easy to deploy and works well in most environments. It adapts well to small and medium scale servers, especially servers that use Cisco products already. Users like the VPN for connecting remote users to the network or connecting one site to another, and businesses appreciate the web filtering component. The hardware is reliable, as is Cisco technical support. 

FortiGate is a newer up-and-comer to the world of network security. It handles traffic spikes and larger server loads with ease, and is more affordable than its comparable competitors. The interface is simple to use, and the firewall is easy to configure. Simplified pricing allows businesses to pay only for the services they use.

Limitations

Each of these firewall products has its own limitations that may affect which one potential customers will choose.

Though many users appreciate Cisco ASA and its reliable system and support, it can become expensive for smaller businesses, especially when factoring in support contracts. The interface is clunky and can be difficult to use. ASA is not as fully-featured as an NGFW (it’s missing the reliable multi-WAN support FortiGate has), and several users reported switching to an NGFW for a more robust solution. 

The downside of FortiGate’s simplified pricing is that it affects scalability. If a user wants to increase server performance, they must buy additional products. Various versions of the software can be buggy, and frequent patches are released. While the user interface is good, the command line prompt can be confusing to use.

Pricing

FortiGate pricing is available by quote from Fortinet or 3rd party providers. ASA pricing can be found by contacting Cisco or a certified Cisco Partner.

Likelihood to Recommend

Cisco ASA

CISCO ASA is suitable for every organization from MID range to HIGH RANGE. However, for small customers, they can buy Cisco product but support cost will be the challenge. However nowadays one tool is never enough, but Cisco gives us a unified way of managing infra with there different solutions. I agree they are more stable products comparing any products which are available in the Market.
Jitu Mani Das | TrustRadius Reviewer

FortiGate

Fortinet Fortigate is a robust firewall and security device. Fortinet has devices geared for any situations, and for any sized company...from single computer small businesses to extremely large organizations with thousands of computers. Fortinet Fortigate is reasonably priced and contains the ability to have multiple functions embedded into a single device, making management that much simpler. Its robust feature set is top-notch and is on a level playing field with the largest names in the business, and in my view, because of the cost difference, wins hands down.
Anonymous | TrustRadius Reviewer

Feature Rating Comparison

Firewall

Cisco ASA
8.3
FortiGate
8.9
Identification Technologies
Cisco ASA
7.7
FortiGate
9.0
Visualization Tools
Cisco ASA
6.9
FortiGate
8.9
Content Inspection
Cisco ASA
8.1
FortiGate
8.8
Policy-based Controls
Cisco ASA
8.9
FortiGate
9.2
Active Directory and LDAP
Cisco ASA
9.1
FortiGate
8.9
Firewall Management Console
Cisco ASA
7.3
FortiGate
9.3
Reporting and Logging
Cisco ASA
7.7
FortiGate
8.6
VPN
Cisco ASA
8.8
FortiGate
9.3
High Availability
Cisco ASA
9.4
FortiGate
8.7
Stateful Inspection
Cisco ASA
9.3
FortiGate
8.7
Proxy Server
Cisco ASA
7.9
FortiGate
7.9

Pros

Cisco ASA

  • Consistent commands. A lot of the general commands used on other Cisco switches and routers also work here, making it easy script common tasks and changes across multiple devices without having to switch command structure.
  • Processing power. The ASA is incredibly fast and doesn't introduce much if any latency.
Brian Taylor | TrustRadius Reviewer

FortiGate

  • My favorite aspect of the Fortigate product is the ease of use. The GUI is very easy to get around. The products rules and configuration are easy to learn and apply. The informational tools are easy to look at and produce results that are intuitive and quick to assess.
  • Another great attribute of the FortiGate product was reasonable pricing for the product and then the ongoing support. Living in the SMB space with tight governmental budgets is a huge factor in all my decisions. When a company like Fortinet comes along and produces good products at very reasonable prices it is good for SMB companies like mine. Many vendors price their products in a fashion that is beyond consideration by SMBs like myself.
  • Support is always a big factor in consideration of any product for our organization. Fortinet support has been extremely good. They have provided an onsite engineer at no cost to help us design, implement and maintain new products when needed. The call support has also been excellent, with quick response times and knowledgeable technicians.
Jeff Winter | TrustRadius Reviewer

Cons

Cisco ASA

  • The gui interface is good, but often lacks the ability to perform full tasks without command line.
  • Integration with other products can be complicated and you may need to find the custom commands from the 3rd party or support to make it work.
  • A lot of their advanced features are present, but aren't fully integrated yet.
Anonymous | TrustRadius Reviewer

FortiGate

  • Fortigate's SSL VPN client isn't available via MSI with an easy options for mass deployment and configuration out of the box. You need to have a Fortinet Developer Network license to create a custom deploy image.
  • Fortinet's after hours support is overseas and is adequate. Not stellar.
Anonymous | TrustRadius Reviewer

Likelihood to Renew

Cisco ASA

Cisco ASA 9.0
Based on 1 answer
I am committed to low-OpEx usage model, know most (nearly all) hw and sw features and have a good customer base to continue to use Cisco ASA.
Sergei Chernooki | TrustRadius Reviewer

FortiGate

FortiGate 9.9
Based on 4 answers
Fortinet's products have kept improving with new software releases and they continue to deliver great value. Their support is also very good. I believe that as a small enterprise, their products have given us competitive advantage delivering features and functionality that enable us to innovate and do things better. They also continue to be a leader in the markets they serve.
Adrian Cumberbatch | TrustRadius Reviewer

Usability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 9.8
Based on 6 answers
Ease of configuration, rich feature set and robust monitoring have made this product almost fun to use. I still consult the manual, but the intuitive design of the GUI makes most configuration tasks self explanatory. We deploy several different models, but the management is nearly identical across all of them, making it easy to keep on top of hundreds of devices
Steve Jenovai | TrustRadius Reviewer

Reliability and Availability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 2 answers
We had didn't any hardware failures at our two main office locations and upgraded our units last year after using them for about 5-6 years
Adrian Cumberbatch | TrustRadius Reviewer

Performance

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 1 answer
Good performance and really good integration. We have integration with Microsoft AD.
Kewyn Medina | TrustRadius Reviewer

Support Rating

Cisco ASA

Cisco ASA 8.4
Based on 12 answers
The support is usually very good and gets back to you very quickly. However I had some instances of when two engineers will give me wildly different answers to what I thought was a simple question. Overall however I do rate the support highly and they are generally always very good.
Fraser Clark | TrustRadius Reviewer

FortiGate

FortiGate 8.9
Based on 32 answers
We live in Turkey. Fortinet's Turkey office [dealt] constantly with us in our every problem or our experience. In addition, global support teams also supported every ticket we opened in every problem we encountered. They support innovative approaches and evaluate and offer solutions. In this context, they were very supportive of the problems we encountered in previous versions.
Tayfun Toka | TrustRadius Reviewer

In-Person Training

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 10.0
Based on 1 answer
I received it a couple years afters use it and it was just to confirm my knowledge about the tool.
Kewyn Medina | TrustRadius Reviewer

Implementation Rating

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 8.0
Based on 4 answers
Make sure that you have the most current version of FortiOS. Make sure all Fortigates are on the same version
Steve Jenovai | TrustRadius Reviewer

Alternatives Considered

Cisco ASA

Cisco made sense from the standpoint that my engineers already knew it and there was little learning curve. Personally, I prefer a purpose-built hardware solution. Untangle is not ready for the enterprise as a whole but works great to do web/application filtering . Checkpoint and Palo are VERY high cost and have few support options
Larry Chisholm | TrustRadius Reviewer

FortiGate

Fortigate is a lot easier to configure and manage than a Cisco ASA Firewall. Fortinet feels a lot more intuitive and easier to configure than Cisco. Fortinet is a lot more innovative and have easier to use products.
Artur Bittencourt | TrustRadius Reviewer

Scalability

Cisco ASA

No score
No answers yet
No answers on this topic

FortiGate

FortiGate 9.8
Based on 2 answers
My environments are pretty small (less than 100 users per location) so no issues here.
Adrian Cumberbatch | TrustRadius Reviewer

Return on Investment

Cisco ASA

  • We've gotten every penny's worth of use with our Cisco ASA firewalls - they were a few thousand dollars to purchase, even in HA, and have been in production for over 5 years
  • I'm glad that when the Cisco ASA IKE buffer overflow vulnerability was released, Cisco provided a code update, even though the 8.2-series code was EOL. This saved us and many companies from scrambling and spending big $ and time to put a workaround in.
Anonymous | TrustRadius Reviewer

FortiGate

  • (Positive) The network is secured.
  • (Positive) As an analyst, I have to convince C level executives regarding protection from threats, intrusion, and productivity of the network resources. And I am achieving all the segments with ease of access.
  • (Neutral) The unavailability of post-sale service requires improvements. But due to the vast community of users and excellent documentation of the product, hides the lack of post-sale service availability.
Harshil Gupta | TrustRadius Reviewer

Pricing Details

Cisco ASA

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

FortiGate

General

Free Trial
Free/Freemium Version
Premium Consulting/Integration Services
Entry-level set up fee?
No

Rating Summary

Likelihood to Recommend

Cisco ASA
8.2
FortiGate
9.1

Likelihood to Renew

Cisco ASA
9.0
FortiGate
9.9

Usability

Cisco ASA
FortiGate
9.8

Reliability and Availability

Cisco ASA
FortiGate
10.0

Performance

Cisco ASA
FortiGate
10.0

Support Rating

Cisco ASA
8.4
FortiGate
8.9

In-Person Training

Cisco ASA
FortiGate
10.0

Implementation Rating

Cisco ASA
FortiGate
8.0

Scalability

Cisco ASA
FortiGate
9.8

Add comparison